[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fZf2yZQHBnQ8E2wBEcXuL-sqaXUkzTpMpSF9Hve1Dlac":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"vulnerabilities":29,"developer":30,"crawl_stats":27,"alternatives":38,"analysis":142,"fingerprints":232},"spotify-play-for-wordpress","Plugin Name:  Spotify Play Button for WordPress","0.2.1","Rhys Wynne","https:\u002F\u002Fprofiles.wordpress.org\u002Frhyswynne\u002F","\u003Cp>Spotify Play Button For WordPress allows you to add Spotify Playlists and tracks easily and quickly to your blog. You can add Spotify content to your site either in a widget, a template or within actual posts. The plugin is customisable with Spotify Play features as well via the options page.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"http:\u002F\u002Fbloggingdojo.com\u002Fwordpress-plugins\u002Fspotify-play-button-for-wordpress\u002F\" rel=\"nofollow ugc\">Spotify Play Button for WordPress\u003C\u002Fa> Plugin homepage with further instructions.\u003C\u002Fli>\n\u003Cli>Blogging Tutorials and WordPress Plugins at \u003Ca href=\"http:\u002F\u002Fbloggingdojo.com\u002F\" rel=\"nofollow ugc\">The Blogging Dojo\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>Additional Testing by \u003Ca href=\"http:\u002F\u002Fnbell.co.uk\u002F\" rel=\"nofollow ugc\">Dan Bell\u003C\u002Fa>.\u003C\u002Fli>\n\u003C\u002Ful>\n","Easily embed Spotify Tracks & Playslists using the Spotify Play System into your WordPress Blog",10,2760,0,"2012-11-18T20:07:00.000Z","3.3.2","3.0","",[19,20,21,22,23],"spotify","spotify-embed","spotify-play","tinymce-button","widgets","http:\u002F\u002Fbloggingdojo.com\u002Fwordpress-plugins\u002Fspotify-play-button-for-wordpress\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fspotify-play-for-wordpress.zip",85,null,"2026-03-15T15:16:48.613Z",[],{"slug":31,"display_name":7,"profile_url":8,"plugin_count":32,"total_installs":33,"avg_security_score":34,"avg_patch_time_days":35,"trust_score":36,"computed_at":37},"rhyswynne",13,7020,93,476,74,"2026-04-04T13:44:18.132Z",[39,61,84,100,119],{"slug":40,"name":41,"version":16,"author":42,"author_profile":43,"description":44,"short_description":45,"active_installs":46,"downloaded":47,"rating":48,"num_ratings":49,"last_updated":50,"tested_up_to":51,"requires_at_least":52,"requires_php":53,"tags":54,"homepage":58,"download_link":59,"security_score":60,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"liza-spotify-widget-for-elementor","Liza Widget For Spotify and Elementor","Ruthless WP","https:\u002F\u002Fprofiles.wordpress.org\u002Ffallentroj\u002F","\u003Cp>\u003Cstrong>Liza Widget For Spotify and Elementor\u003C\u002Fstrong> is the first use to goand easy to use \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Felementor\u002F\" rel=\"ugc\">Elementor Page Builder\u003C\u002Fa> Spotify Widget. Our goal is to provide you with the Functional Elementor Widget That can be easly used, Add Spotify Music Without writing the Single Line of Code. Liza Spotify Widget helps users to use Spotify API on their websites easily without any headaches. If you like Liza Spotify Widget, Please review us on the wordpress.org as it will help us develop better Functionality for the Spotify Widget.\u003Cbr \u002F>\nAs of New update of the plugin, we added Spotify Profile widget which allows you to share your Spotify profile with realtime stats, as well as improved our embed plugin and made it easier to share and embed tracks from Spotify directly to your website! New Settings page has been added which allows you to authorise with your Spotify profile and integrate easier with its API.\u003C\u002Fp>\n\u003Cp>Follow new tutorial linked below as well as write on plugin forum if you have any questions!\u003C\u002Fp>\n\u003Cp>Linking Spotify Account correctly is essential for plugin to work properly, with new updated version of plugin, you can directly search and embed tracks and artists inside the elementor editor.\u003C\u002Fp>\n\u003Cp>With love, Rutheless WP\u002FNikusha Sirbiladze\u003C\u002Fp>\n\u003Cp>\u003Cem>See tutorials Below\u003C\u002Fem>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fyoutu.be\u002FHbL8ERGBquk?si=8ErHDMorbyG8iAPK\" rel=\"nofollow ugc\">\u003Cstrong>How to setup the Spotify API?\u003C\u002Fstrong>\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>External Services\u003C\u002Fh3>\n\u003Cp>This plugin connects to external services to enable specific features and functionalities. Below is the list of external services used, the data shared, and relevant legal documentation:\u003C\u002Fp>\n\u003Ch3>Freemius\u003C\u002Fh3>\n\u003Cp>This plugin integrates with the Freemius platform to manage licensing, plugin updates, analytics, and user feedback.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>What is sent\u003C\u002Fstrong>: When the plugin is installed or updated, it sends information such as the website URL, WordPress version, plugin version, PHP version, and potentially the user’s email address (only if explicitly provided during activation).\u003C\u002Fli>\n\u003Cli>\u003Cstrong>When\u003C\u002Fstrong>: Data is sent during plugin activation, updates, deactivation, or when a user opts into Freemius insights.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Why\u003C\u002Fstrong>: It is required for license management, plugin updates, and collecting usage analytics if the user opts in.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Service Provider\u003C\u002Fstrong>: Freemius, Inc.\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Ffreemius.com\u002Fterms\u002F\" rel=\"nofollow ugc\">Freemius Terms of Service\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Ffreemius.com\u002Fprivacy\u002F\" rel=\"nofollow ugc\">Freemius Privacy Policy\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Spotify API\u003C\u002Fh3>\n\u003Cp>This plugin uses the Spotify API to fetch and display music, playlists, albums, or artist information within the Elementor widget.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>What is sent\u003C\u002Fstrong>: Requests sent to the Spotify API may include search queries, artist IDs, playlist IDs, and other music-related identifiers. No personal user data is sent unless the user connects their Spotify account for additional features.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>When\u003C\u002Fstrong>: Data is sent whenever the widget makes a request to display or update Spotify content.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Why\u003C\u002Fstrong>: It is necessary to retrieve and display Spotify music content dynamically inside the widget.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Service Provider\u003C\u002Fstrong>: Spotify AB\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fdeveloper.spotify.com\u002Fterms\u002F\" rel=\"nofollow ugc\">Spotify Developer Terms of Service\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fwww.spotify.com\u002Flegal\u002Fprivacy-policy\u002F\" rel=\"nofollow ugc\">Spotify Privacy Policy\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Ful>\n","Spotify Widget, Spotify, Easy to use Spotify widget.",1000,28434,80,8,"2025-06-14T12:19:00.000Z","6.8.5","5.2","7.0",[55,56,19,20,57],"elementor","music","widgets-for-elementor","https:\u002F\u002Fruthlesswp.com\u002Fspotify","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fliza-spotify-widget-for-elementor.3.0.zip",100,{"slug":62,"name":63,"version":64,"author":65,"author_profile":66,"description":67,"short_description":68,"active_installs":69,"downloaded":70,"rating":71,"num_ratings":72,"last_updated":73,"tested_up_to":74,"requires_at_least":75,"requires_php":76,"tags":77,"homepage":80,"download_link":81,"security_score":82,"vuln_count":72,"unpatched_count":13,"last_vuln_date":83,"fetched_at":28},"spotify-play-button-for-wordpress","Sp*tify Play Button for WordPress","2.13","Johan Jonk Stenström","https:\u002F\u002Fprofiles.wordpress.org\u002Fjonkastonka\u002F","\u003Cp>\u003Cstrong>Now with Gutenberg block!\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Sp*tify Play Button lets you easily add a Spotify Play Button for instant play of album, playlist or song by adding the Sp*tify Play Button for WordPress block or adding a shortcode:\u003C\u002Fp>\n\u003Cp>Album example:\u003Cbr \u002F>\n    [spotifyplaybutton play=”https:\u002F\u002Fopen.spotify.com\u002Falbum\u002F5PvkD4XryLL9oC4NFItYIM?si=pT6des85S6WPQY7O9ipGPw”]\u003Cbr \u002F>\nAlso works with old Spotify URI:\u003Cbr \u002F>\n    [spotify:album:7JggdVIipgSShK1uk7N1hP]\u003C\u002Fp>\n\u003Cp>Playlist example:\u003Cbr \u002F>\n    [spotifyplaybutton play=”https:\u002F\u002Fopen.spotify.com\u002Fplaylist\u002F37i9dQZF1E39g1r00WoOvS?si=e05ab8be00c24b39″]\u003Cbr \u002F>\nAlso works with old Spotify URI:\u003Cbr \u002F>\n    [spotify:user:jonk:playlist:65ujzBs6WTdWDIr17dOXUm]\u003C\u002Fp>\n\u003Cp>Song example:\u003Cbr \u002F>\n    [spotifyplaybutton play=”https:\u002F\u002Fopen.spotify.com\u002Ftrack\u002F6te1QldCR1BWiNgwZADpu4?si=ee0dfebaa2944756″]\u003Cbr \u002F>\nAlso works with old Spotify URI:\u003Cbr \u002F>\n    [spotify:track:2qntSA2cwerjTduHPuKnW5]\u003C\u002Fp>\n\u003Cp>You don’t have to remember these shortcodes. If you are using Gutenberg, there is a block with all the settings you need. And if you’re using the Classic editor there’s a Sp*tify Play Button in the editor.\u003C\u002Fp>\n\u003Cp>Simply right click on album, playlist or song in Spotify and click “Share” and then click “URI”. Either paste that together with the shortcode above or just use the admin button and paste the URI there.\u003C\u002Fp>\n\u003Cp>You can set the style for your Sp*tify Play Buttons on the “Sp*tify Play Button Settings” page under the “Settings” menu (http:\u002F\u002FYOURBLOG\u002Fwp-admin\u002Foptions-general.php?page=spotifyplaybutton_settings).\u003C\u002Fp>\n\u003Cp>You can also add attributes to customize a single Sp*tify Play Button:\u003C\u002Fp>\n\u003Col>\n\u003Cli>\n\u003Cp>view\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>size\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>sizetype\u003C\u002Fp>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>link\u003C\u002Fp>\n\u003C\u002Fli>\n\u003C\u002Fol>\n\u003Cp>All of these will override the settings in “Sp*tify Play Button Settings” for the Sp*tify Play Button and they are all optional.\u003C\u002Fp>\n\u003Cp>Example: \u003Ccode>[spotifyplaybutton play=\"https:\u002F\u002Fopen.spotify.com\u002Fplaylist\u002F2Xm7KEL5NFHwPboQY22BcZ?si=c99d69e2c916447b\" size=\"0\" sizetype=\"big\"]\u003C\u002Fcode>\u003C\u002Fp>\n","Now with Gutenberg block!",3000,86082,86,4,"2024-11-18T14:27:00.000Z","6.7.5","5.0","7.4",[78,19,79,62],"embed-spotify","spotify-play-button","https:\u002F\u002Fplugins.followmedarling.se\u002Fspotify-play-button-for-wordpress\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fspotify-play-button-for-wordpress.2.13.zip",89,"2024-11-25 19:39:45",{"slug":85,"name":86,"version":87,"author":88,"author_profile":89,"description":90,"short_description":91,"active_installs":60,"downloaded":92,"rating":13,"num_ratings":13,"last_updated":93,"tested_up_to":51,"requires_at_least":94,"requires_php":53,"tags":95,"homepage":17,"download_link":99,"security_score":60,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"spotiembed","Spotiembed","1.1.2","biozalp","https:\u002F\u002Fprofiles.wordpress.org\u002Fbiozalp\u002F","\u003Cp>This plugin is a widget’ified version of Spotify’s standart embed module. Main features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Able to showcase track, album, playlist and artist.\u003C\u002Fli>\n\u003Cli>Ability to set height within style pane of Elementor, it confronts the default values of Spotify for some content as 152px and 352px.\u003C\u002Fli>\n\u003Cli>Use dynamic tags in order to get the Spotify link from another source (ACF\u002FSCF was the main focus while development)\u003C\u002Fli>\n\u003C\u002Ful>\n","A simple plugin which adds an Elementor widget to usable widget library. The plugin enables option to use dynamic URL in builders.",1203,"2025-06-22T18:27:00.000Z","4.7",[96,97,98,19,20],"acf","acf-spotify-link","scf-spotify-link","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fspotiembed.1.1.2.zip",{"slug":101,"name":102,"version":103,"author":104,"author_profile":105,"description":106,"short_description":107,"active_installs":13,"downloaded":108,"rating":13,"num_ratings":13,"last_updated":109,"tested_up_to":110,"requires_at_least":111,"requires_php":112,"tags":113,"homepage":117,"download_link":118,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"privacy-embed","Privacy Embed","1.0.3","Julian Groshaupt","https:\u002F\u002Fprofiles.wordpress.org\u002Fjuliangroshaupt\u002F","\u003Cp>This plugin adds some shortcodes to let you embed external content like youtube videos on your wordpress pages. Nothing new so far – why another plugin?\u003C\u002Fp>\n\u003Cp>Well, this plugin puts emphasis on data protection. Before the content is loaded from an external area of responsibility (a third-party provider), the user must explicitly agree to the data transfer. In this way, the site operator is supported in designing his website in a data protection-compliant manner (taking into account the GDPR, among other things).\u003C\u002Fp>\n\u003Cp>For the WPBakery Page Builder plugin, prefabricated blocks are also provided so that the shortcodes can be used directly.\u003C\u002Fp>\n\u003Cp>Currently, embeddings of the following services are supported:\u003Cbr \u002F>\n* YouTube videos (Google)\u003Cbr \u002F>\n* Spotify (Artists, Albums, Tracks, Podcast Episodes)\u003Cbr \u002F>\n* Twitter (Single Tweet, User Timeline, Follow-Button, Mention-Button, Hashtag-Button)\u003C\u002Fp>\n","Providing shortcodes to privacy-friendly embed external elements (like YouTube videos).",987,"2021-06-22T07:08:00.000Z","5.7.15","5.7","5.1.2",[114,19,20,115,116],"privacy","youtube","youtube-embed","https:\u002F\u002Fjulian-groshaupt.de\u002Fprojekte\u002Fwordpress\u002Fprivacy-embed","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fprivacy-embed.1.0.3.zip",{"slug":120,"name":121,"version":122,"author":123,"author_profile":124,"description":125,"short_description":126,"active_installs":127,"downloaded":128,"rating":129,"num_ratings":130,"last_updated":131,"tested_up_to":132,"requires_at_least":133,"requires_php":134,"tags":135,"homepage":140,"download_link":141,"security_score":60,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"classic-widgets","Classic Widgets","0.3","Tonya Mork","https:\u002F\u002Fprofiles.wordpress.org\u002Fhellofromtonya\u002F","\u003Cp>Classic Widgets is an official plugin maintained by the WordPress team that restores the previous (“classic”) WordPress widgets settings screens. It will be supported and maintained to 2024, or as long as is necessary.\u003C\u002Fp>\n\u003Cp>Once activated and when using a classic (non-block) theme, this plugin restores the previous widgets settings screens and disables the block editor from managing widgets. There is no other configuration, the classic widgets settings screens are enabled or disabled by either enabling or disabling this plugin.\u003C\u002Fp>\n","Enables the previous \"classic\" widgets settings screens in Appearance - Widgets and the Customizer. Disables the block editor from managing widgets.",2000000,7214667,98,262,"2025-12-08T10:52:00.000Z","6.9.4","4.9","5.6",[120,136,137,138,139],"disable","disable-gutenberg","editor","gutenberg","https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fclassic-widgets\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fclassic-widgets.0.3.zip",{"attackSurface":143,"codeSignals":183,"taintFlows":221,"riskAssessment":222,"analyzedAt":231},{"hooks":144,"ajaxHandlers":175,"restRoutes":176,"shortcodes":177,"cronEvents":181,"entryPointCount":182,"unprotectedCount":13},[145,151,155,158,162,167,171],{"type":146,"name":147,"callback":148,"file":149,"line":150},"action","admin_init","spotify_play_button_for_wordpress_add_admin_stylesheet","spotify-play-for-wordpress.php",12,{"type":146,"name":152,"callback":153,"file":149,"line":154},"admin_menu","spotify_play_button_for_wordpress_menus",60,{"type":146,"name":147,"callback":156,"file":149,"line":157},"spotify_play_button_wordpress_options_process",61,{"type":146,"name":159,"callback":160,"file":149,"line":161},"widgets_init","anonymous",334,{"type":163,"name":164,"callback":165,"file":149,"line":166},"filter","mce_external_plugins","add_spotify_play_button_for_wordpress_tinymce_plugin",352,{"type":163,"name":168,"callback":169,"file":149,"line":170},"mce_buttons","spotify_play_button_for_wordpress_button",353,{"type":146,"name":172,"callback":173,"file":149,"line":174},"init","spotify_play_button_for_wordpress_addbuttons",370,[],[],[178],{"tag":19,"callback":179,"file":149,"line":180},"spotify_play_button_for_wordpress_shortcode",372,[],1,{"dangerousFunctions":184,"sqlUsage":185,"outputEscaping":187,"fileOperations":13,"externalRequests":13,"nonceChecks":13,"capabilityChecks":188,"bundledLibraries":220},[],{"prepared":13,"raw":13,"locations":186},[],{"escaped":188,"rawEcho":189,"locations":190},2,14,[191,194,196,198,200,202,204,206,208,210,212,214,216,218],{"file":149,"line":192,"context":193},45,"raw output",{"file":149,"line":195,"context":193},49,{"file":149,"line":197,"context":193},115,{"file":149,"line":199,"context":193},203,{"file":149,"line":201,"context":193},214,{"file":149,"line":203,"context":193},281,{"file":149,"line":205,"context":193},283,{"file":149,"line":207,"context":193},285,{"file":149,"line":209,"context":193},289,{"file":149,"line":211,"context":193},318,{"file":149,"line":213,"context":193},319,{"file":149,"line":215,"context":193},321,{"file":149,"line":217,"context":193},325,{"file":149,"line":219,"context":193},329,[],[],{"summary":223,"deductions":224},"The 'spotify-play-for-wordpress' plugin v0.2.1 exhibits a mixed security posture. On the positive side, it demonstrates a commitment to secure coding practices by not utilizing dangerous functions, all SQL queries are prepared, and there are no recorded vulnerabilities in its history. This suggests a generally well-maintained and secure codebase to date. However, the static analysis reveals some areas for concern. The plugin has a very low percentage of properly escaped output (13%), which is a significant weakness. While the attack surface is small, the lack of nonce checks on the single shortcode, which is an entry point, represents a potential risk for cross-site request forgery (CSRF) or other injection attacks if user-supplied data is not handled with extreme care within the shortcode's logic. The absence of taint analysis flows is noted, but this may be due to the limited nature of the analysis or the plugin's functionality. Overall, the plugin is relatively secure due to its lack of known vulnerabilities and use of prepared statements, but the poor output escaping and the potential for unmitigated shortcode entry points warrant attention.",[225,228],{"reason":226,"points":227},"Low percentage of properly escaped output",6,{"reason":229,"points":230},"Shortcode entry point without nonce check",5,"2026-03-17T00:16:15.004Z",{"wat":233,"direct":238},{"assetPaths":234,"generatorPatterns":235,"scriptPaths":236,"versionParams":237},[],[],[],[],{"cssClasses":239,"htmlComments":240,"htmlAttributes":241,"restEndpoints":242,"jsGlobals":243,"shortcodeOutput":244},[],[],[],[],[],[]]